Of the externally reported security defects, eight are high-severity issues and 14 are medium-severity flaws.
The most severe of these bugs, based on the paid bug bounty reward, is CVE-2022-4174, a type confusion issue in the web browser’s V8 JavaScript engine.
Google credited security researcher Zhenghang Xiao for reporting the vulnerability and says it paid a $15,000 reward for it.